02-28-2017 12:56 PM
Hi Team,
Please let us know how to check, Email log for a specific date/time/ for a user/ for a domain. In detail ( apart from
02-28-2017 01:08 PM
Hi,
grep is the only major tool available on the ESA in order to parse through mail_logs for specific date/time, domain, etc.
If you require additional options to parse the log file then you can opt to push the logs to a different server and use third-party tools or scripts for the same. However, such tools are not supported by Cisco.
Thank You!
Libin Varghese
02-28-2017 01:16 PM
could you please let us know commands on how to check logs for the particular day and
02-28-2017 01:58 PM
Sure.
You could use the below command for example
grep "Feb 28 09:20" mail_logs
- Displays all mail_logs for search term Feb 28 09:20
grep "Feb 28 09.*domain.com" mail_logs
- Displays all search results for domain.com at the specified time. Do note the date and domain should find a match in a single line of the mail_logs
- Libin V
03-31-2017 12:05 PM
Please suggest on how to grep the mail logs for an address for a specific date .
03-31-2017 12:19 PM
grep "Mar 31.*email@domain.com" mail_logs - for email address
grep "Mar 31.*domain.com" mail_logs - for domain or hostname
grep "Mar 31.*192.168.1.1" mail_logs - for IP address
You can separate multiple terms using ".*" as long as they are in a single line it should return a result.
- Libin V
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide